Intruder – 2011’s hacking story, from LulzSec to Anon

LulzSec’s DDOS attacks against Minecraft and EVE last night are the latest instance in a year riddled with “intrusive” problems for games companies. Brenna tells 2011’s hacking story, and explains why there’s no end in sight.

Games have suffered massive fallout thanks to recent hacking activity, finding themselves locked out of online play and scurrying to change passwords and account details after data compromise.

While hackers have always existed on the fringes of the geek-gamer world, noted for targeting lucrative MMOs, the gaming world’s attention was focussed sharply by Anonymous’s decision to target Sony earlier this year.

Operation Sony

Anonymous, a venerable hacktivist group known for its scientology protests and championing of net neutrality, announced its intention to punish Sony for its legal pursuit of a group of PlayStation 3 hackers, the most prominent of whom, George “GeoHot” Hotz, eventually settled out of court.

Launching a campaign of DDOS attacks, Anonymous managed to bring down the PlayStation Network. The resulting outcry from disgruntled gamers saw the group rethink its strategy and cease disruptive activity in favour of peaceful real-world protest.

Shortly thereafter, however, PSNgate – a mid-April external intrusion resulting in the compromise of hundreds of thousands of user records, including names, email addresses, passwords, and possibly credit card details – resulted in catastrophe for Sony.

Alleged members of Anonymous have been arrested this week; three in Spain and 32 in Turkey, although neither set of arrests pertained to gaming-related offences. The group has already started retailiation operations against bothcountries.

LulzSec

Anonymous isn’t the only hacker group raising ire among gamers, with the suddenly-famous LulzSec sprouting headlines left, right and centre.

LulzSec has been described as an off-shoot of Anonymous, and even a Wikileaks-related wing by conservative press, but the group itself remains quiet on its origins, beyond a historic link to 4Chan’s /b/. Its only manifesto, besides doing it for the lulz, appears to be a declaration of war on Sony.

“This is the beginning of the end for Sony … Our #Sonage (Sony + ownage) is going at maximum speed, there’s a lot to do,” the group declared, before becoming distracted by an attack on PBS.

The group has attacked Sony Pictures and Sony BMG Japan, Belgium and the Netherlands, and has claimed responsibility for multiple attackson gaming companies. Earlier this month, it managed a breach of Nintendo of America’s servers, but said it hadn’t taken anything.

In an unprecedented event called TitanicTakeoverTuesday yesterday, LulzSec fired DDOS atacks at EVE Online, Minecraft and League of Legends’ login servers.

CCP took its entire network down in response, guarding against the possibility of a more serious hack, and while reports suggest service resumed last night, the website is currently behaving patchily, offering the following explanation:

“The EVE Online website is temporarily unavailable. We have a number of Amarrians bringing in a Minmatar labor workers to get it back up.”

Just one day later, Epic admitted its own network has also suffered an intrusion. Again, user data was compromised, including encrypted passwords.

There’s no reason for hackers to stop trying their luck against gaming companies.

No end in sight

The sudden spate of gaming-related hacking isn’t a coincidence; Sony’s revelation of such serious compromise has shown the world that major gaming networks can be breached, and that they have something worth stealing. Unless both of those factors change – which they won’t – there’s no reason for hackers to stop trying their luck against gaming companies.

Hacking has always been a problem for any network, and the fact of the matter is that no system is completely secure. Even if we could confidently eliminate pervasive human error and the power of sheer numbers, with enough time and patience, clever people can get in and out of any system.

All we can do is mind our personal data carefully, and trust that those who guard it are taking notice.

Sometimes we include links to online retail stores. If you click on one and make a purchase we may receive a small commission. For more information, go here.